Compare commits
10 Commits
fb5a9fe029
...
cc8617b404
| Author | SHA1 | Date | |
|---|---|---|---|
| cc8617b404 | |||
| bbc7bcff48 | |||
| 6dc5ff4f67 | |||
| db5e9891e1 | |||
| 88edbfa75e | |||
| ff45d73102 | |||
| d231509c97 | |||
| f68b049013 | |||
| d838aea292 | |||
| a4a11a8f8a |
@ -1,31 +1,31 @@
|
||||
apiVersion: argoproj.io/v1alpha1
|
||||
kind: ApplicationSet
|
||||
metadata:
|
||||
name: cluster-secretstores
|
||||
namespace: argocd
|
||||
spec:
|
||||
generators:
|
||||
- git:
|
||||
repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
|
||||
revision: master
|
||||
files:
|
||||
- path: cluster-secretstores/*.yaml
|
||||
template:
|
||||
metadata:
|
||||
name: cluster-secretstore-{{path.basename}}
|
||||
spec:
|
||||
project: dev-tools
|
||||
source:
|
||||
repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
|
||||
targetRevision: master
|
||||
path: cluster-secretstores
|
||||
directory:
|
||||
recurse: false
|
||||
include: '{{path.basename}}.yaml'
|
||||
destination:
|
||||
server: https://kubernetes.default.svc
|
||||
namespace: monitoring
|
||||
syncPolicy:
|
||||
automated:
|
||||
prune: true
|
||||
selfHeal: true
|
||||
# apiVersion: argoproj.io/v1alpha1
|
||||
# kind: ApplicationSet
|
||||
# metadata:
|
||||
# name: cluster-secretstores
|
||||
# namespace: argocd
|
||||
# spec:
|
||||
# generators:
|
||||
# - git:
|
||||
# repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
|
||||
# revision: master
|
||||
# files:
|
||||
# - path: cluster-secretstores/*.yaml
|
||||
# template:
|
||||
# metadata:
|
||||
# name: cluster-secretstore-{{path.filename}} # <-- FIXED
|
||||
# spec:
|
||||
# project: dev-tools
|
||||
# source:
|
||||
# repoURL: https://git.dvirlabs.com/dvirlabs/secrets-gitops.git
|
||||
# targetRevision: master
|
||||
# path: cluster-secretstores
|
||||
# directory:
|
||||
# recurse: false
|
||||
# include: '{{path.filename}}'
|
||||
# destination:
|
||||
# server: https://kubernetes.default.svc
|
||||
# namespace: dev-tools
|
||||
# syncPolicy:
|
||||
# automated:
|
||||
# prune: true
|
||||
# selfHeal: true
|
||||
|
||||
15
cluster-secretstores/vault-general-secrets.yaml
Normal file
15
cluster-secretstores/vault-general-secrets.yaml
Normal file
@ -0,0 +1,15 @@
|
||||
apiVersion: external-secrets.io/v1beta1
|
||||
kind: ClusterSecretStore
|
||||
metadata:
|
||||
name: vault-general-secrets
|
||||
spec:
|
||||
provider:
|
||||
vault:
|
||||
server: "http://vault.dev-tools.svc.cluster.local:8200"
|
||||
path: "general-secrets"
|
||||
version: "v2"
|
||||
auth:
|
||||
tokenSecretRef:
|
||||
name: vault-eso-token
|
||||
key: token
|
||||
namespace: dev-tools
|
||||
15
cluster-secretstores/vault-internal-users.yaml
Normal file
15
cluster-secretstores/vault-internal-users.yaml
Normal file
@ -0,0 +1,15 @@
|
||||
apiVersion: external-secrets.io/v1beta1
|
||||
kind: ClusterSecretStore
|
||||
metadata:
|
||||
name: vault-internal-users
|
||||
spec:
|
||||
provider:
|
||||
vault:
|
||||
server: "http://vault.dev-tools.svc.cluster.local:8200"
|
||||
path: "internal-users"
|
||||
version: "v2"
|
||||
auth:
|
||||
tokenSecretRef:
|
||||
name: vault-eso-token
|
||||
key: token
|
||||
namespace: dev-tools
|
||||
@ -6,10 +6,10 @@ spec:
|
||||
provider:
|
||||
vault:
|
||||
server: "http://vault.dev-tools.svc.cluster.local:8200"
|
||||
path: "oidc-cliets"
|
||||
path: "oidc-clients"
|
||||
version: "v2"
|
||||
auth:
|
||||
tokenSecretRef:
|
||||
name: vault-init
|
||||
key: root-token
|
||||
name: vault-eso-token
|
||||
key: token
|
||||
namespace: dev-tools
|
||||
Loading…
x
Reference in New Issue
Block a user